The following Fedora 23 Security updates need testing: Age URL 418 https://bodhi.fedoraproject.org/updates/FEDORA-2015-16240 nagios-4.0.8-1.fc23 375 https://bodhi.fedoraproject.org/updates/FEDORA-2015-81ded368fe miniupnpc-1.9-6.fc23 348 https://bodhi.fedoraproject.org/updates/FEDORA-2015-27392b3324 jbig2dec-0.12-2.fc23 299 https://bodhi.fedoraproject.org/updates/FEDORA-2015-dd52a54fa1 python-pymongo-3.0.3-1.fc23 299 https://bodhi.fedoraproject.org/updates/FEDORA-2015-06a7c972e8 thttpd-2.25b-37.fc23 264 https://bodhi.fedoraproject.org/updates/FEDORA-2016-637618fcd4 mingw-nsis-2.50-1.fc23 105 https://bodhi.fedoraproject.org/updates/FEDORA-2016-8d79ade826 flex-2.6.0-2.fc23 94 https://bodhi.fedoraproject.org/updates/FEDORA-2016-c2ec9c716e redis-3.2.3-1.fc23 87 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d6288f555c libarchive-3.2.1-3.fc23 python-libarchive-c-2.5-1.fc23 71 https://bodhi.fedoraproject.org/updates/FEDORA-2016-b3a6435b14 dhcpcd-6.11.3-1.fc23 37 https://bodhi.fedoraproject.org/updates/FEDORA-2016-1649cc31e0 ca-certificates-2016.2.10-1.0.fc23 29 https://bodhi.fedoraproject.org/updates/FEDORA-2016-17ea599651 compat-guile18-1.8.8-14.fc23 14 https://bodhi.fedoraproject.org/updates/FEDORA-2016-b89e991e63 nodejs-0.10.48-1.fc23 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-4df986a71f memcached-1.4.17-5.fc23 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-0ff6c3d84b tre-0.8.0-18.20140228gitc2f5d13.fc23 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-15d4c05a19 ghostscript-9.20-5.fc23 3 https://bodhi.fedoraproject.org/updates/FEDORA-2016-012de4c97e chromium-54.0.2840.90-3.fc23 3 https://bodhi.fedoraproject.org/updates/FEDORA-2016-272fa6b96e dracut-043-67.fc23 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-48614c8b69 sudo-1.8.18p1-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-605fd98c32 bind-9.10.4-2.P4.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d2828a4793 firewalld-0.4.4.1-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-e77c8c1f3b python-cryptography-vectors-1.5.3-1.fc23 python-cryptography-1.5.3-3.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-8e39076950 bind99-9.9.9-4.P4.fc23 The following Fedora 23 Critical Path updates have yet to be approved: Age URL 114 https://bodhi.fedoraproject.org/updates/FEDORA-2016-98a7a1b6e0 abrt-2.8.0-6.fc23 libreport-2.6.4-3.fc23 87 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d6288f555c libarchive-3.2.1-3.fc23 python-libarchive-c-2.5-1.fc23 48 https://bodhi.fedoraproject.org/updates/FEDORA-2016-79072fd70e python-virtkey-0.63.0-1.fc23 42 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d26923757a koji-1.10.1-13.fc23 37 https://bodhi.fedoraproject.org/updates/FEDORA-2016-1649cc31e0 ca-certificates-2016.2.10-1.0.fc23 22 https://bodhi.fedoraproject.org/updates/FEDORA-2016-79669f13cf dmidecode-3.0-6.fc23 20 https://bodhi.fedoraproject.org/updates/FEDORA-2016-86a2119f42 nspr-4.13.1-1.fc23 12 https://bodhi.fedoraproject.org/updates/FEDORA-2016-a0a575d718 libraw1394-2.1.2-1.fc23 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-28991efb96 samba-4.3.12-1.fc23 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-0906f64ec8 rpm-4.13.0-1.fc23 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-6acb5c3dcb ntfs-3g-2016.2.22-3.fc23 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-f3a79ea051 hwdata-0.294-1.fc23 3 https://bodhi.fedoraproject.org/updates/FEDORA-2016-272fa6b96e dracut-043-67.fc23 3 https://bodhi.fedoraproject.org/updates/FEDORA-2016-3082a2ecdc perl-5.22.2-355.fc23 3 https://bodhi.fedoraproject.org/updates/FEDORA-2016-c33289a2c6 breeze-icon-theme-5.27.0-1.fc23 extra-cmake-modules-5.27.0-1.fc23 kf5-5.27.0-1.fc23 kf5-attica-5.27.0-1.fc23 kf5-baloo-5.27.0-1.fc23 kf5-bluez-qt-5.27.0-1.fc23 kf5-frameworkintegration-5.27.0-1.fc23 kf5-kactivities-5.27.0-1.fc23 kf5-kactivities-stats-5.27.0-1.fc23 kf5-kapidox-5.27.0-1.fc23 kf5-karchive-5.27.0-1.fc23 kf5-kauth-5.27.0-1.fc23 kf5-kbookmarks-5.27.0-1.fc23 kf5-kcmutils-5.27.0-1.fc23 kf5-kcodecs-5.27.0-1.fc23 kf5-kcompletion-5.27.0-1.fc23 kf5-kconfig-5.27.0-1.fc23 kf5-kconfigwidgets-5.27.0-1.fc23 kf5-kcoreaddons-5.27.0-1.fc23 kf5-kcrash-5.27.0-1.fc23 kf5-kdbusaddons-5.27.0-1.fc23 kf5-kdeclarative-5.27.0-1.fc23 kf5-kded-5.27.0-1.fc23 kf5-kdelibs4support-5.27.0-1.fc23 kf5-kdesignerplugin-5.27.0-1.fc23 kf5-kdesu-5.27.0-1.fc23 kf5-kdewebkit-5.27.0-1.fc23 kf5-kdnssd-5.27.0-1.fc23 kf5-kdoctools-5.27.0-1.fc23 kf5-kemoticons-5.27.0-1.fc23 kf5-kfilemetadata-5.27.0-1.fc23 kf5-kglobalaccel-5.27.0-1.fc23 kf5-kguiad dons-5.27.0-1.fc23 kf5-khtml-5.27.0-1.fc23 kf5-ki18n-5.27.0-1.fc23 kf5-kiconthemes-5.27.0-1.fc23 kf5-kidletime-5.27.0-1.fc23 kf5-kimageformats-5.27.0-1.fc23 kf5-kinit-5.27.0-1.fc23 kf5-kio-5.27.0-1.fc23 kf5-kitemmodels-5.27.0-1.fc23 kf5-kitemviews-5.27.0-1.fc23 kf5-kjobwidgets-5.27.0-1.fc23 kf5-kjs-5.27.0-1.fc23 kf5-kjsembed-5.27.0-1.fc23 kf5-kmediaplayer-5.27.0-1.fc23 kf5-knewstuff-5.27.0-1.fc23 kf5-knotifications-5.27.0-1.fc23 kf5-knotifyconfig-5.27.0-1.fc23 kf5-kpackage-5.27.0-1.fc23 kf5-kparts-5.27.0-1.fc23 kf5-kpeople-5.27.0-1.fc23 kf5-kplotting-5.27.0-1.fc23 kf5-kpty-5.27.0-4.fc23 kf5-kross-5.27.0-1.fc23 kf5-krunner-5.27.0-1.fc23 kf5-kservice-5.27.0-1.fc23 kf5-ktexteditor-5.27.0-1.fc23 kf5-ktextwidgets-5.27.0-1.fc23 kf5-kunitconversion-5.27.0-1.fc23 kf5-kwallet-5.27.0-1.fc23 kf5-kwayland-5.27.0-1.fc23 kf5-kwidgetsaddons-5.27.0-1.fc23 kf5-kwindowsystem-5.27.0-1.fc23 kf5-kxmlgui-5.27.0-1.fc23 kf5-kxmlrpcclient-5.27.0-1.fc23 kf5-modemmanager-qt-5.27.0-1.fc23 kf5-networkmanager-qt -5.27.0-1.fc23 kf5-plasma-5.27.0-1.fc23 kf5-solid-5.27.0-1.fc23 kf5-sonnet-5.27.0-1.fc23 kf5-threadweaver-5.27.0-1.fc23 oxygen-icon-theme-5.27.0-1.fc23 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-48614c8b69 sudo-1.8.18p1-1.fc23 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-3a43754667 lxsession-0.5.2-12.D20161106git7b9a9580da.fc23 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-4a308d12ef libpng-1.6.26-1.fc23 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-bead55ff97 libfm-1.2.4-9.D20161105gitc2989af015.fc23 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-be9d874c86 menu-cache-1.0.2-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-c72c2c5531 dnsmasq-2.76-2.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-605fd98c32 bind-9.10.4-2.P4.fc23 The following builds have been pushed to Fedora 23 updates-testing bind99-9.9.9-4.P4.fc23 gst-entrans-1.0.3-1.fc23 libfastjson-0.99.4-1.fc23 libmediainfo-0.7.90-1.fc23 mediainfo-0.7.90-1.fc23 mediawriter-4.0.4-0.fc23 php-horde-Horde-Service-Weather-2.5.2-1.fc23 php-pecl-yaml-1.3.0-1.fc23 python-cryptography-1.5.3-3.fc23 python-cryptography-vectors-1.5.3-1.fc23 Details about builds: ================================================================================ bind99-9.9.9-4.P4.fc23 (FEDORA-2016-8e39076950) The Berkeley Internet Name Domain (BIND) DNS (Domain Name System) libraries -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2016-6170 ---- Security fix for CVE-2016-8864 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1353563 - CVE-2016-6170 bind: Improper restriction of zone size limit https://bugzilla.redhat.com/show_bug.cgi?id=1353563 [ 2 ] Bug #1389652 - CVE-2016-8864 bind: assertion failure while handling responses containing a DNAME answer https://bugzilla.redhat.com/show_bug.cgi?id=1389652 -------------------------------------------------------------------------------- ================================================================================ gst-entrans-1.0.3-1.fc23 (FEDORA-2016-02c75922bf) Plug-ins and tools for transcoding and recording with GStreamer -------------------------------------------------------------------------------- Update Information: This update contains minor bugfixes for both entrans and associated GStreamer plugins. Full release notes: http://gentrans.sourceforge.net/docs/head/manual/html/package.html#sect-history -------------------------------------------------------------------------------- ================================================================================ libfastjson-0.99.4-1.fc23 (FEDORA-2016-e3a6275250) A JSON implementation in C -------------------------------------------------------------------------------- Update Information: Package created -------------------------------------------------------------------------------- ================================================================================ libmediainfo-0.7.90-1.fc23 (FEDORA-2016-d463c59304) Library for supplies technical and tag information about a video or audio file -------------------------------------------------------------------------------- Update Information: Update to 0.7.90. -------------------------------------------------------------------------------- ================================================================================ mediainfo-0.7.90-1.fc23 (FEDORA-2016-d463c59304) Supplies technical and tag information about a video or audio file (CLI) -------------------------------------------------------------------------------- Update Information: Update to 0.7.90. -------------------------------------------------------------------------------- ================================================================================ mediawriter-4.0.4-0.fc23 (FEDORA-2016-9659f7b138) Fedora Media Writer -------------------------------------------------------------------------------- Update Information: Update to 4.0.4 -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Service-Weather-2.5.2-1.fc23 (FEDORA-2016-3506863e9f) Horde Weather Provider -------------------------------------------------------------------------------- Update Information: **Horde_Service_Weather 2.5.2** * [mjr] More fixes for Postgres, and more robust data validation during migration. ---- **Horde_Service_Weather 2.5.1** * [mjr] Fix migration for Postgres (Bug #14508). ---- **Horde_Service_Weather 2.5.0** * [mjr] Replace defunct data source for surface station data (Bug #14502). ---- ** Horde_Service_Weather 2.4.1** * [jan] Update location of METAR stations. -------------------------------------------------------------------------------- ================================================================================ php-pecl-yaml-1.3.0-1.fc23 (FEDORA-2016-0e464cfd6c) Support for YAML 1.1 serialization using the LibYAML library -------------------------------------------------------------------------------- Update Information: This update brings in a number of important bug fixes backported from the PHP YAML extension's 2.0 branch. Full release notes: https://pecl.php.net/package/yaml/1.3.0 -------------------------------------------------------------------------------- ================================================================================ python-cryptography-1.5.3-3.fc23 (FEDORA-2016-e77c8c1f3b) PyCA's cryptography library -------------------------------------------------------------------------------- Update Information: Rebase to 1.5.3 to fix CVE-2016-9243 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1393432 - CVE-2016-9243 python-cryptography: HKDF might return an empty byte-string [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1393432 [ 2 ] Bug #1361916 - python-cryptography - Missing python2-subpackage https://bugzilla.redhat.com/show_bug.cgi?id=1361916 [ 3 ] Bug #1279263 - python-cryptography-vectors needs upgrade for the security bug https://bugzilla.redhat.com/show_bug.cgi?id=1279263 -------------------------------------------------------------------------------- ================================================================================ python-cryptography-vectors-1.5.3-1.fc23 (FEDORA-2016-e77c8c1f3b) Test vectors for the cryptography package -------------------------------------------------------------------------------- Update Information: Rebase to 1.5.3 to fix CVE-2016-9243 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1393432 - CVE-2016-9243 python-cryptography: HKDF might return an empty byte-string [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1393432 [ 2 ] Bug #1361916 - python-cryptography - Missing python2-subpackage https://bugzilla.redhat.com/show_bug.cgi?id=1361916 [ 3 ] Bug #1279263 - python-cryptography-vectors needs upgrade for the security bug https://bugzilla.redhat.com/show_bug.cgi?id=1279263 -------------------------------------------------------------------------------- _______________________________________________ test mailing list -- test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to test-leave@xxxxxxxxxxxxxxxxxxxxxxx
